[Samba] smb.conf different between first DC and replica DC
Andrew Bartlett
abartlet at samba.org
Tue Dec 6 21:58:26 UTC 2016
On Tue, 2016-12-06 at 21:23 +0000, Rowland Penny via samba wrote:
> On Tue, 6 Dec 2016 20:56:23 +0000
> Brian Candler via samba <samba at lists.samba.org> wrote:
>
> > Under ubuntu 16.04, compiling samba 4.5.1 from source, I've created
> > an initial DC and a replica DC by following:
> >
> > https://wiki.samba.org/index.php/Setting_up_Samba_as_an_Active_Dire
> > ctory_Domain_Controller
> > https://wiki.samba.org/index.php/Joining_a_Samba_DC_to_an_Existing_
> > Active_Directory
> >
> > For the second one I had to add the extra DNS records as per:
> > https://wiki.samba.org/index.php/Verifying_and_Creating_a_DC_DNS_Re
> > cord
> >
> > Now, I think it's worked OK. However I see there are two lines in
> > smb.conf on the first server which aren't in the second server:
> >
> > idmap_ldb:use rfc2307 = yes
> > xattr_tdb:file = /usr/local/samba/var/locks/xattr.tdb
> >
> > Should I add these to the second machine?
>
> In theory yes, but the presence of the second line shows you are not
> using the system ACLs, you are using a tdb file. You may have to run
> the provision again ;-)
There is no need to re-run provision. Just take out that line and run
the 'samba-tool ntacl sysvolreset' command (assuming no shares other
than [sysvol] and [netlogon] are used).
Andrew Bartlett
More information about the samba
mailing list